-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 16 Feb 2026 17:16:47 +0100
Source: gimp
Binary: gimp gimp-dbgsym gir1.2-gimp-3.0 libgimp-3.0-0 libgimp-3.0-0-dbgsym libgimp-3.0-bin libgimp-3.0-bin-dbgsym libgimp-3.0-dev
Architecture: riscv64
Version: 3.0.4-3+deb13u6
Distribution: trixie-security
Urgency: high
Maintainer: riscv64 Build Daemon (rv-osuosl-04) <buildd_riscv64-rv-osuosl-04@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 gimp       - GNU Image Manipulation Program
 gir1.2-gimp-3.0 - Introspection data for the GIMP library
 libgimp-3.0-0 - Libraries for the GNU Image Manipulation Program
 libgimp-3.0-bin - Development binaries for the GIMP library
 libgimp-3.0-dev - Headers and other files for compiling plugins for GIMP
Closes: 1127838 1127841 1127842
Changes:
 gimp (3.0.4-3+deb13u6) trixie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * plug-ins: fix PSD loader: heap-buffer-overflow in fread_pascal_string
     (CVE-2026-2239) (Closes: #1127838)
   * Fix PSP File Parsing Integer Overflow Leading to Heap Corruption
     (CVE-2026-2271) (Closes: #1127841)
   * plug-ins: Add overflow checks for ICO loading (CVE-2026-2272)
     (Closes: #1127842)
   * plug-ins: fix crash due to uninitialized ptr_array when loading a specially
     crafted PSD
Checksums-Sha1:
 53d3873c7d3722090d5b3cf2b95a53daf627888e 16927672 gimp-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 9bb8d86e8c7c0dac586c1a3afebcc9544a2bd5ba 23252 gimp_3.0.4-3+deb13u6_riscv64-buildd.buildinfo
 e3331bca5264f9d7e29b139d71d650cd09fbbd69 6507368 gimp_3.0.4-3+deb13u6_riscv64.deb
 79b2dcdf6134288dd27c4a4fe522c13c3d0ef7db 93312 gir1.2-gimp-3.0_3.0.4-3+deb13u6_riscv64.deb
 5350d55438dc16c5a5145499ca9940335e2a921a 1939624 libgimp-3.0-0-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 1cff603ef76fd4f06910d1ab4fdf428b72bcc461 1037144 libgimp-3.0-0_3.0.4-3+deb13u6_riscv64.deb
 e35afa500d9e0f01008445e76ffc2175b3aa424a 17440 libgimp-3.0-bin-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 7e091e3c302c556c1dd1c529393faee766310c40 31608 libgimp-3.0-bin_3.0.4-3+deb13u6_riscv64.deb
 1790374315ab4099b2cffe7f04eab97fb26a9aa2 360148 libgimp-3.0-dev_3.0.4-3+deb13u6_riscv64.deb
Checksums-Sha256:
 4cdcedd8915c5954319d3a3c5399c607a52f15a3cb17c0353c4359658c95849d 16927672 gimp-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 1ddcf17fae5050a90c197c2d894aaea6ec5f3d49551b3517c666c3fcb421513a 23252 gimp_3.0.4-3+deb13u6_riscv64-buildd.buildinfo
 4a75290f29e4f462046e2211c9857353bceb067d333aecd7e622de69b4a2f75a 6507368 gimp_3.0.4-3+deb13u6_riscv64.deb
 865a4d9a3bfba37598e87883279bab685442dc968173157f4486ffdc458077c3 93312 gir1.2-gimp-3.0_3.0.4-3+deb13u6_riscv64.deb
 4a2b35611331744b9a37a25d8131ee95e4c00f6bfa2bc1fba935478558b7dc44 1939624 libgimp-3.0-0-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 e041147c25dc8dee5203c9e780674483946856c3e6511274d26ce7f4fce71b8e 1037144 libgimp-3.0-0_3.0.4-3+deb13u6_riscv64.deb
 f2b858702db86f1e6763e718e4256a569769a151ad9a8e19a8bcd5f890347fda 17440 libgimp-3.0-bin-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 d66e9690fda780afba5eb196fb4d2977f17f17b4182ab46849e42ec9f3d05f3f 31608 libgimp-3.0-bin_3.0.4-3+deb13u6_riscv64.deb
 9048336aab1e9b6bf4865675b5c5bff0b2f9b1c99de35d7c974f57a03d3b7303 360148 libgimp-3.0-dev_3.0.4-3+deb13u6_riscv64.deb
Files:
 77841c0f51a24e015aecf90efe9d04ad 16927672 debug optional gimp-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 f4089a4aa7fad93cb9c3e79bcd093781 23252 graphics optional gimp_3.0.4-3+deb13u6_riscv64-buildd.buildinfo
 20b2143a9afbeae99023909e51938d85 6507368 graphics optional gimp_3.0.4-3+deb13u6_riscv64.deb
 40eef27758ac96fa8b2e96997f1b2252 93312 introspection optional gir1.2-gimp-3.0_3.0.4-3+deb13u6_riscv64.deb
 7431c38d12baf493d043aa9e04b841f2 1939624 debug optional libgimp-3.0-0-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 326972025ac8c2a5b6540588c73ec971 1037144 libs optional libgimp-3.0-0_3.0.4-3+deb13u6_riscv64.deb
 fc6f4cd7846d89510b9c382cb71c9baa 17440 debug optional libgimp-3.0-bin-dbgsym_3.0.4-3+deb13u6_riscv64.deb
 c46e54d4497678779c5005d48c13bc40 31608 libdevel optional libgimp-3.0-bin_3.0.4-3+deb13u6_riscv64.deb
 793949c598c43ff30c0b24d5afc16ccb 360148 libdevel optional libgimp-3.0-dev_3.0.4-3+deb13u6_riscv64.deb

-----BEGIN PGP SIGNATURE-----
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=SLbh
-----END PGP SIGNATURE-----